ALT Linux Team

Branch sisyphus_mipsel update on 2022-10-20

2022-10-20

ALT-BU-2022-6733-1

Branch sisyphus_mipsel update bulletin.

ALT-PU-2022-6730-1

Package make-initrd updated to version 2.31.0-alt2 for branch sisyphus_mipsel.

Closed bugs

Bug #44073

Не работает поддержка /etc/crypttab в luks

ALT-PU-2022-6731-1

Package autofs updated to version 5.1.8-alt5 for branch sisyphus_mipsel.

Closed bugs

Bug #44091

autofs-ldap: при установке ломаются права на /etc/autofs_ldap_auth.conf

ALT-PU-2022-6732-1

Package arj updated to version 3.10.22-alt8 for branch sisyphus_mipsel.

Closed vulnerabilities

Published: 2015-04-08
Modified: 2024-11-21

CVE-2015-0556

Open-source ARJ archiver 3.10.22 allows remote attackers to conduct directory traversal attacks via a symlink attack in an ARJ archive.

Severity: MEDIUM (5.8)
References:
Published: 2015-04-08
Modified: 2024-11-21

CVE-2015-0557

Open-source ARJ archiver 3.10.22 does not properly remove leading slashes from paths, which allows remote attackers to conduct absolute path traversal attacks and write to arbitrary files via multiple leading slashes in a path in an ARJ archive.

Severity: MEDIUM (5.8)
References:
Published: 2015-04-08
Modified: 2024-11-21

CVE-2015-2782

Buffer overflow in Open-source ARJ archiver 3.10.22 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ARJ archive.

Severity: HIGH (7.5)
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top